Slims9 Bulian 9.4.2 is affected by SQL injection in /admin/modules/system/backup.php. User data can be obtained.
References
Link | Resource |
---|---|
https://github.com/slims/slims9_bulian/issues/124 | Exploit Issue Tracking Third Party Advisory |
Configurations
History
24 Mar 2022, 02:02
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:slims:senayan_library_management_system:9.4.2:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
References | (MISC) https://github.com/slims/slims9_bulian/issues/124 - Exploit, Issue Tracking, Third Party Advisory | |
CWE | CWE-89 |
17 Mar 2022, 12:50
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-03-17 12:15
Updated : 2024-02-04 22:29
NVD link : CVE-2021-45794
Mitre link : CVE-2021-45794
CVE.ORG link : CVE-2021-45794
JSON object : View
Products Affected
slims
- senayan_library_management_system
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')